Lucene search

[email protected]NVD:CVE-2013-1763

HistoryFeb 28, 2013 - 7:55 p.m.

CVE-2013-1763

2013-02-2819:55:01

CWE-20

[email protected]

web.nvd.nist.gov

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.8%

JSON

Array index error in the __sock_diag_rcv_msg function in net/core/sock_diag.c in the Linux kernel before 3.7.10 allows local users to gain privileges via a large family value in a Netlink message.

Affected configurations

NVD

Node

linuxlinux_kernelRange3.3–3.4.34

linuxlinux_kernelRange3.5–3.7.10

linuxlinux_kernelRange3.8–3.8.1

References

git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=6e601a53566d84e1ffd25e7b6fe0b6894ffd79c0

lists.opensuse.org/opensuse-security-announce/2013-03/msg00004.html

openwall.com/lists/oss-security/2013/02/25/12

www.exploit-db.com/exploits/24555

www.exploit-db.com/exploits/24746

www.exploit-db.com/exploits/33336

www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.7.10

www.mandriva.com/security/advisories?name=MDVSA-2013:176

www.openwall.com/lists/oss-security/2013/02/24/3

www.ubuntu.com/usn/USN-1749-1

www.ubuntu.com/usn/USN-1750-1

www.ubuntu.com/usn/USN-1751-1

bugzilla.redhat.com/show_bug.cgi?id=915052

github.com/torvalds/linux/commit/6e601a53566d84e1ffd25e7b6fe0b6894ffd79c0

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

25.8%

JSON

Related for NVD:CVE-2013-1763

nessus9 openvas60 saint4 veracode1 zdt3 ubuntucve1 debiancve1 securityvulns2 ubuntu3 prion1 exploitpack2 cvelist1 cve1 seebug1 exploitdb2 fedora27 suse1 redhat1